November 2019
Beginner
768 pages
32h 29m
English
A new feature introduced in vSphere 6.5 is the encryption of VMs, which secures the VMDK virtual disks (also .vmx and swap files are encrypted), making the stored data unreadable.
To get the benefits of encryption, you need to connect vCenter Server to a Key Management Server (KMS) that provides the necessary keys to encrypt and decrypt VMs using the Key Management Interoperability Protocol (KMIP) protocol. To establish the connection between KMS and vCenter Server, the KMS performs a certificate exchange.
The components required to allow VM encryption features are the following: